Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/ODlja_b59i-133EBdAMvNxg_FGs.roa
File: ODlja_b59i-133EBdAMvNxg_FGs.roa (raw, json)
Hash identifier: BeeBcCK5yZ18C4O3Tfyd1bLor0is1i1bKSBKlJMjrjE=
Subject key identifier: 38:39:63:6B:F6:F9:F6:2F:B5:DF:71:01:74:03:2F:37:18:3F:14:6B
Certificate issuer: /CN=5d0a0d396f769369365f2b983c531afeca9710a7
Certificate serial: 019422FC218C8D07E48B9958148E44D90624
Authority key identifier: 5D:0A:0D:39:6F:76:93:69:36:5F:2B:98:3C:53:1A:FE:CA:97:10:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQoNOW92k2k2XyuYPFMa_sqXEKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/ODlja_b59i-133EBdAMvNxg_FGs.roa
Signing time: Wed 01 Jan 2025 17:48:56 +0000
ROA not before: Wed 01 Jan 2025 17:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214204
IP address blocks: 45.148.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:21:8c:8d:07:e4:8b:99:58:14:8e:44:d9:06:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0a0d396f769369365f2b983c531afeca9710a7
Validity
Not Before: Jan 1 17:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3839636bf6f9f62fb5df710174032f37183f146b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:17:13:84:63:f0:d9:ed:3c:df:da:10:42:49:
92:73:a5:a4:0f:fa:32:17:8b:d6:0f:3e:91:5f:de:
af:d6:82:a2:b2:71:9e:af:67:04:9a:79:26:8b:1c:
25:11:b1:38:d1:4f:51:4d:ce:af:23:7f:1c:9f:3a:
e4:f7:fc:29:98:1f:99:6f:6d:ee:f5:c7:a5:2d:c5:
f2:af:3e:99:d4:b5:4e:04:a6:73:ea:b9:f1:28:0b:
11:bd:fe:37:fa:dd:3b:b2:27:16:dc:15:a8:ea:ba:
24:62:04:46:52:3b:94:aa:9b:c6:c4:91:6b:54:9b:
22:94:2d:f3:7a:fd:0a:1a:8d:db:94:eb:15:57:4f:
84:b9:84:b5:ac:47:32:6d:83:f8:ef:8d:82:b9:b1:
b7:6f:b0:22:0d:8f:55:c0:f0:e0:38:67:ca:c1:67:
ac:1c:92:45:9d:28:be:da:dc:03:7d:43:e3:23:c2:
73:7e:e9:a2:bb:e1:b3:23:26:0a:6c:86:9e:23:09:
3d:8e:96:d2:ae:be:aa:76:35:67:8c:77:48:d0:bc:
79:25:06:82:c6:fa:f4:cd:8a:89:b3:7a:43:9d:0b:
9d:02:66:d3:3a:45:b7:bc:21:75:a0:18:4f:e2:1e:
0c:ff:6d:c3:dd:86:c5:d1:9a:95:35:56:bb:b4:5e:
ed:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:39:63:6B:F6:F9:F6:2F:B5:DF:71:01:74:03:2F:37:18:3F:14:6B
X509v3 Authority Key Identifier:
keyid:5D:0A:0D:39:6F:76:93:69:36:5F:2B:98:3C:53:1A:FE:CA:97:10:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQoNOW92k2k2XyuYPFMa_sqXEKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/ODlja_b59i-133EBdAMvNxg_FGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/XQoNOW92k2k2XyuYPFMa_sqXEKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.239.0/24
Signature Algorithm: sha256WithRSAEncryption
74:9e:57:40:31:da:0c:a7:bf:9c:f7:6f:c3:f7:7f:82:6d:6c:
f2:6b:aa:e2:7b:57:08:04:14:91:ec:31:db:69:92:ac:d0:75:
06:0e:eb:47:23:4d:76:64:7b:41:e1:f3:32:15:85:39:df:7e:
3b:6e:99:76:99:d3:c0:1b:3a:ed:0e:d6:83:04:36:bc:8f:cc:
cb:40:1f:1f:c7:56:84:59:04:92:b4:17:6c:77:73:a8:af:2d:
22:ae:74:e5:62:bb:57:58:cb:30:6e:89:3b:23:a7:e8:b5:9c:
3b:14:e9:44:42:cd:01:14:9e:33:14:cf:19:d1:99:25:f5:8e:
ae:b7:a5:e9:53:17:3a:f6:da:78:9a:c8:c0:17:09:90:52:e6:
f0:53:0b:da:d6:f9:88:f9:66:d7:33:f8:b0:15:bd:f8:0e:3d:
14:4b:a6:e8:be:10:0d:a6:b3:59:49:f8:b1:0a:ee:fd:64:10:
83:9f:3b:ef:b4:24:95:8d:ad:d4:bb:fa:25:03:e6:90:67:1f:
52:ff:69:86:78:72:c3:47:85:77:aa:3b:f9:a5:54:0c:ae:17:
2d:9f:0e:fc:8a:41:73:1b:63:51:25:20:4d:d2:a5:e5:ec:0e:
f4:fb:86:1f:d5:f9:0e:28:9e:a8:46:ed:98:c4:09:7b:d4:4c:
55:d7:e0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:12 2025 by rpki-client on console.sobornost.net